Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/tKq0O-LPSyD7OVQ3RoZqSH6OoU0.roa
File: tKq0O-LPSyD7OVQ3RoZqSH6OoU0.roa (raw, json)
Hash identifier: jOdTVbPLjSR1tlli1/3dPvxDQKaJk5SfpapOvSq+4eM=
Subject key identifier: B4:AA:B4:3B:E2:CF:4B:20:FB:39:54:37:46:86:6A:48:7E:8E:A1:4D
Certificate issuer: /CN=f4272ac0423fb097583c6872567d84cae410c89b
Certificate serial: 019420D60EF2E4603A1B29492E2C8F2EF1B8
Authority key identifier: F4:27:2A:C0:42:3F:B0:97:58:3C:68:72:56:7D:84:CA:E4:10:C8:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9CcqwEI_sJdYPGhyVn2EyuQQyJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/tKq0O-LPSyD7OVQ3RoZqSH6OoU0.roa
Signing time: Wed 01 Jan 2025 07:48:06 +0000
ROA not before: Wed 01 Jan 2025 07:48:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210199
IP address blocks: 2001:67c:c0c::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:0e:f2:e4:60:3a:1b:29:49:2e:2c:8f:2e:f1:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4272ac0423fb097583c6872567d84cae410c89b
Validity
Not Before: Jan 1 07:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b4aab43be2cf4b20fb39543746866a487e8ea14d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7c:32:b2:16:0e:13:17:f8:4c:f5:14:fe:2f:
cc:7e:fc:60:21:ae:d8:c5:e2:a8:4c:29:bf:bd:22:
b2:48:b5:0a:a3:5c:8a:73:c0:df:50:29:bf:cc:f0:
8c:95:8a:f4:72:d0:ab:16:50:9c:ca:b7:45:af:63:
74:28:a9:f1:81:17:13:e6:52:13:a1:a7:ab:16:d0:
b7:ad:b3:52:ea:28:c4:36:61:f2:cc:da:97:92:ea:
23:47:87:85:b4:f3:9e:89:25:d9:37:e9:6b:5e:40:
58:83:0c:06:fd:26:87:bc:3a:38:69:17:73:56:99:
bf:87:7e:1f:d5:17:1a:b6:6c:7c:bb:05:5b:48:0b:
13:5c:9b:2c:5c:1c:8d:45:ca:d1:9c:cb:81:4b:2d:
4d:48:fa:3d:30:bb:6c:87:56:7e:5d:9a:f0:6b:d1:
6f:15:50:91:41:71:09:73:ba:fa:90:42:d7:40:68:
57:83:a2:7b:19:cc:99:53:24:4e:92:d2:7a:4d:78:
09:a3:5d:59:41:2a:b3:bb:d2:1d:ff:a3:29:72:56:
11:23:4d:62:d5:b0:f2:0b:bf:03:03:53:20:b4:b5:
d0:d4:56:5c:4f:37:7e:46:ae:e8:d0:59:9c:0c:cf:
63:8e:ed:77:8d:98:5f:8e:55:61:70:e5:df:da:f5:
31:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:AA:B4:3B:E2:CF:4B:20:FB:39:54:37:46:86:6A:48:7E:8E:A1:4D
X509v3 Authority Key Identifier:
keyid:F4:27:2A:C0:42:3F:B0:97:58:3C:68:72:56:7D:84:CA:E4:10:C8:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9CcqwEI_sJdYPGhyVn2EyuQQyJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/tKq0O-LPSyD7OVQ3RoZqSH6OoU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/7f2cf2-4294-43d6-a321-47eddde2a372/1/9CcqwEI_sJdYPGhyVn2EyuQQyJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c0c::/48
Signature Algorithm: sha256WithRSAEncryption
a1:37:d2:d2:fe:60:24:fc:7b:ed:d6:b8:30:33:9b:5d:24:84:
b4:dd:87:68:49:e4:63:ca:5d:cc:26:19:3b:8a:08:dc:9c:b5:
0d:6f:35:33:df:82:79:c7:d9:e7:f2:f0:83:ee:f5:c3:35:02:
de:c8:f6:3a:35:3c:e5:d3:80:78:39:d1:7b:77:55:09:bb:00:
0a:fb:e7:14:41:4e:d7:b1:0f:01:b2:8d:9a:b0:e0:68:c7:09:
80:41:b3:0e:df:ed:a2:2d:f4:7d:da:a6:6b:72:0e:61:e5:92:
6f:4c:e0:c7:d7:a5:0b:fa:e5:94:18:63:2f:55:e7:6c:a1:78:
5d:e1:7f:ed:02:11:d9:da:fe:30:41:f4:31:be:d1:72:3d:d1:
45:a5:ee:78:e0:b1:11:1a:4e:49:3b:69:00:27:3a:df:66:1d:
4b:c7:5b:57:d9:ea:a9:78:d7:ed:49:0c:4e:00:0c:aa:88:ac:
6f:b9:de:0e:ae:ac:24:c0:51:2e:e1:23:b7:7d:bd:d2:06:49:
6f:10:2d:e3:58:8e:4a:9a:c1:98:c9:97:5f:dc:86:f5:8c:70:
67:54:15:57:ab:8b:35:f8:96:d3:a8:94:cf:99:7d:62:13:4a:
0e:29:77:ac:90:92:19:1b:6e:93:40:ad:29:32:bb:ed:53:11:
84:8d:56:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 04:47:41 2025 by rpki-client on console.sobornost.net